scratchfoundation/restify-cors-middleware
1
0
Fork 0
mirror of https://github.com/scratchfoundation/restify-cors-middleware.git synced 2024-12-19 04:12:25 -05:00
Code Issues Projects Releases Packages Wiki Activity Actions

add test for checking for duplicate allow headers

Browse source
This commit is contained in:
ubergesundheit 2017-10-31 20:47:47 +01:00
parent 397d6f7279
commit 0217b82729
No known key found for this signature in database
GPG key ID: 5CBA93477A39C06E
1 changed files with 20 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

20
test/cors.preflight.spec.js
View file

@ -125,4 +125,24 @@ describe('CORS: preflight requests', function () {
.expect(204) .expect(204)
.end(done) .end(done)
}) })
it('[Not in spec] The Allow-Headers should not contain duplicates', function (done) {
var server = test.corsServer({
origins: ['http://api.myapp.com', 'http://www.myapp.com']
})
request(server)
.options('/test')
.set('Origin', 'http://api.myapp.com')
.set('Access-Control-Request-Method', 'GET')
.expect(204)
.then(function (request) {
var allowHeaders = request.headers['access-control-allow-headers'].split(', ')
if (((new Set(allowHeaders)).size !== allowHeaders.length)) {
return done(new Error('duplicate header detected'))
}
done(null)
})
})
}) })